## **QuantumShield: A Readiness Analyzer for Post-Quantum Cryptography**

In [None]:

!pip install cryptography==39.0.2 pycryptodome==3.18.0 reportlab==4.0.4 ipywidgets==8.0.6 pandas==2.0.3


Collecting cryptography==39.0.2
  Downloading cryptography-39.0.2-cp36-abi3-manylinux_2_28_x86_64.whl.metadata (5.6 kB)
Collecting pycryptodome==3.18.0
  Downloading pycryptodome-3.18.0-cp35-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (3.4 kB)
Collecting reportlab==4.0.4
  Downloading reportlab-4.0.4-py3-none-any.whl.metadata (1.3 kB)
Collecting ipywidgets==8.0.6
  Downloading ipywidgets-8.0.6-py3-none-any.whl.metadata (2.4 kB)
Collecting pandas==2.0.3
  Downloading pandas-2.0.3-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl.metadata (18 kB)
Collecting widgetsnbextension~=4.0.7 (from ipywidgets==8.0.6)
  Downloading widgetsnbextension-4.0.13-py3-none-any.whl.metadata (1.6 kB)
Downloading cryptography-39.0.2-cp36-abi3-manylinux_2_28_x86_64.whl (4.2 MB)
[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m4.2/4.2 MB[0m [31m54.9 MB/s[0m eta [36m0:00:00[0m
[?25hDownloading pycryptodome-3.18.0-cp35-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.w

In [None]:
# prompt: mount

from google.colab import drive
drive.mount('/content/drive')

Mounted at /content/drive


In [None]:
# [User Uploads ZIP]
#         ↓
# [Validate ZIP Format]
#         ↓
# [Securely Extract ZIP]
#         ↓
# [Scan Source Code for Algorithms]
#         ↓
# [Analyze Vulnerabilities]
#         ↓
# [Generate PDF Report]
#         ↓
# [Provide Download Link to User]


In [8]:
pip install pyfiglet

Collecting pyfiglet
  Downloading pyfiglet-1.0.2-py3-none-any.whl.metadata (7.1 kB)
Downloading pyfiglet-1.0.2-py3-none-any.whl (1.1 MB)
[?25l   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m0.0/1.1 MB[0m [31m?[0m eta [36m-:--:--[0m[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m1.1/1.1 MB[0m [31m43.8 MB/s[0m eta [36m0:00:00[0m
[?25hInstalling collected packages: pyfiglet
Successfully installed pyfiglet-1.0.2


In [9]:
import re

# Function to scan a single source code file for cryptographic algorithms
def scan_source_code(file_path):
    detected_algorithms = []
    pattern_mapping = {
        "RSA": r"(RSA\.generate|Crypto\.PublicKey\.RSA|pycryptodome\.PublicKey\.RSA)",
        "AES": r"(AES\.new|Crypto\.Cipher\.AES|Cipher\.AES|pycryptodome\.Cipher\.AES)",
        "SHA": r"(hashlib\.sha256|hashlib\.sha1|Crypto\.Hash\.SHA|pycryptodome\.Hash\.SHA)",
        "ECC": r"(ECC\.generate|Crypto\.PublicKey\.ECC|pycryptodome\.PublicKey\.ECC)"
    }

    try:
        with open(file_path, 'r', encoding='utf-8') as f:
            content = f.read()

            for algo, pattern in pattern_mapping.items():
                matches = re.findall(pattern, content)
                if matches:
                    detected_algorithms.append({
                        "Algorithm": algo,
                        "File": file_path,
                        "Snippet": matches[0]
                    })
    except Exception as e:
        print(f"Error reading file {file_path}: {e}")

    return detected_algorithms
import pyfiglet

# Create ASCII art text for "QuantumShield"
ascii_art = pyfiglet.figlet_format("QuantumShield")

# Print the ASCII art
print(ascii_art)

print("A Readiness Analyzer for Post-Quantum Cryptography")
# Function to analyze vulnerabilities based on detected algorithms
def analyze_vulnerabilities(detected_algorithms):
    vulnerabilities = []
    for entry in detected_algorithms:
        # Justification and remediation based on simple examples for now
        if entry["Algorithm"] == "RSA":
            vulnerabilities.append({
                "Algorithm": entry["Algorithm"],
                "File": entry["File"],
                "Snippet": entry["Snippet"],
                "CWE": "CWE-327: Use of a Broken or Risky Cryptographic Algorithm",
                "Description": "RSA, especially with small key sizes, is vulnerable to attacks by quantum algorithms like Shor's algorithm.",
                "Justification": "RSA with traditional key sizes can be easily broken by quantum computers using Shor's algorithm.",
                "Remediation": "Replace RSA with lattice-based cryptography algorithms like NTRU or use post-quantum safe algorithms like Kyber, NewHope, or NTS-KEM."
            })
        elif entry["Algorithm"] == "AES":
            vulnerabilities.append({
                "Algorithm": entry["Algorithm"],
                "File": entry["File"],
                "Snippet": entry["Snippet"],
                "CWE": "CWE-329: Not Using a Cryptographically Secure Pseudorandom Number Generator",
                "Description": "AES-256 may still be secure against classical computers, but it is vulnerable to quantum algorithms like Grover's algorithm.",
                "Justification": "While AES is still secure against classical attacks, quantum computers may reduce its security by square root speedup with Grover's algorithm.",
                "Remediation": "Switch to post-quantum secure encryption algorithms such as Lizard, NTRUEncrypt, or use AES in combination with lattice-based cryptographic methods."
            })
        elif entry["Algorithm"] == "SHA":
            vulnerabilities.append({
                "Algorithm": entry["Algorithm"],
                "File": entry["File"],
                "Snippet": entry["Snippet"],
                "CWE": "CWE-325: Missing a Required Cryptographic Step",
                "Description": "Hash functions such as SHA-256 may be vulnerable to quantum attacks.",
                "Justification": "Quantum computers could use collision finding algorithms to break hash functions faster than classical computers.",
                "Remediation": "Replace SHA-based hashing with quantum-resistant hash functions such as those based on hash-based signatures or use Lattice-based hashing algorithms."
            })
        elif entry["Algorithm"] == "ECC":
            vulnerabilities.append({
                "Algorithm": entry["Algorithm"],
                "File": entry["File"],
                "Snippet": entry["Snippet"],
                "CWE": "CWE-327: Use of a Broken or Risky Cryptographic Algorithm",
                "Description": "ECC is vulnerable to quantum attacks, especially for small key sizes.",
                "Justification": "ECC with small key sizes is vulnerable to quantum computing attacks, similar to RSA.",
                "Remediation": "Use alternative quantum-resistant elliptic curve algorithms like SIDH or supersingular isogeny-based cryptography."
            })
    return vulnerabilities

# Function to process a given source code file and generate the report
def process_file(file_path):
    # Scan the file for cryptographic algorithms
    detected_algorithms = scan_source_code(file_path)

    if detected_algorithms:
        # Analyze vulnerabilities based on detected algorithms
        vulnerabilities = analyze_vulnerabilities(detected_algorithms)

        # Print the vulnerability report
        print("\nQuantum Cryptography Vulnerability Report:")
        print("-" * 50)
        for entry in vulnerabilities:
            print(f"Algorithm: {entry['Algorithm']}")
            print(f"File: {entry['File']}")
            print(f"Snippet: {entry['Snippet']}")
            print(f"CWE: {entry['CWE']}")
            print(f"Description: {entry['Description']}")
            print(f"Justification: {entry['Justification']}")
            print(f"Remediation: {entry['Remediation']}")
            print("-" * 50)
    else:
        print("No cryptographic vulnerabilities detected in the uploaded code.")

# Example usage: Just provide the file path (e.g., '/content/sample.py')
file_path = '/content/drive/My Drive/Personal/Projects/QCA/sample.py'  # Change this to your file path
process_file(file_path)


  ___                    _                   ____  _     _      _     _ 
 / _ \ _   _  __ _ _ __ | |_ _   _ _ __ ___ / ___|| |__ (_) ___| | __| |
| | | | | | |/ _` | '_ \| __| | | | '_ ` _ \\___ \| '_ \| |/ _ \ |/ _` |
| |_| | |_| | (_| | | | | |_| |_| | | | | | |___) | | | | |  __/ | (_| |
 \__\_\\__,_|\__,_|_| |_|\__|\__,_|_| |_| |_|____/|_| |_|_|\___|_|\__,_|
                                                                        

A Readiness Analyzer for Post-Quantum Cryptography

Quantum Cryptography Vulnerability Report:
--------------------------------------------------
Algorithm: RSA
File: /content/drive/My Drive/Personal/Projects/QCA/sample.py
Snippet: RSA.generate
CWE: CWE-327: Use of a Broken or Risky Cryptographic Algorithm
Description: RSA, especially with small key sizes, is vulnerable to attacks by quantum algorithms like Shor's algorithm.
Justification: RSA with traditional key sizes can be easily broken by quantum computers using Shor's algorithm.
Remediation: Replace